IETF Logo Mail Archive

Re: 4941bis and multicast & QOS

Mark Smith <markzzzsmith@gmail.com> Fri, 14 February 2020 02:55 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B27AB120046 for <ipv6@ietfa.amsl.com>; Thu, 13 Feb 2020 18:55:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.498
X-Spam-Level:
X-Spam-Status: No, score=-0.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id neI-HD04SeUP for <ipv6@ietfa.amsl.com>; Thu, 13 Feb 2020 18:55:48 -0800 (PST)
Received: from mail-oi1-x22a.google.com (mail-oi1-x22a.google.com [IPv6:2607:f8b0:4864:20::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6915F120019 for <6man@ietf.org>; Thu, 13 Feb 2020 18:55:48 -0800 (PST)
Received: by mail-oi1-x22a.google.com with SMTP id i1so8040889oie.8 for <6man@ietf.org>; Thu, 13 Feb 2020 18:55:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=pLkVergw9O/ioAawX5V775D0lSpaLRmQxNCjcKWu3Rw=; b=YyYoffBAVP8miVWkNCqwIEYQmjC3a8Sa8Kqk9hNSQj62pZ1V07ffA+ASh4lHtUfCZR r3+6s22ARIHNvfYA/Px7GysIvoGFtenyoHeVXtbDP3QzjevPi/UO2KdrgMkaTWYp4Ka4 TZVcbUe56C2g7FrqPVz2rFggWkWfuXvS0Laywofz9+W6JyyCjzzax2tYTVPl8fRjUcfo FL9YLc07pziQ9+tHBSmalVm21WeOjf6bgEAzg5koFnV21Ct2qQtuAzT9lm/c9U81PkHP kQ8AjAZeP8ivaSKif3VizQICjaJw4hco1lqfEyZVqm9fM6uUGLAqHeqWB4xVRiC7Ksmv Wwyw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=pLkVergw9O/ioAawX5V775D0lSpaLRmQxNCjcKWu3Rw=; b=qnk/fiwF/6cufmXp4Von4k7BgKKYeHJadV2SHMXEzR2gRytfnN/yosOpTnTKpryg+t te1UE+KpsvRexS68ncEUQx6QHcr4qbekNZHnm6GoBNp0dQUuqGnKVb8V1+X9ED9Q6wp4 5GAR9ZPOiDdt6F8YwBNj95XISmyCbrcrNQIy8uqEy1bfgEJdw/TXC7hL7N5Rc47fJ4kp hx+JWQi1oT4yJIvu3iAJtFCiOKpUaBc3+jQpMVoxZkBwAVSur3ChVpZ58j7/MBybWusV zSXyCDWzOi04Nbc7eIwlQ+o/0BgQFgjEZ8JjrCrKzLY6qa6k/In9+clCevLbNlZ3bFLM I6Zg==
X-Gm-Message-State: APjAAAXZkhAXYoP1u9kf0l8/iilKhdS2D6BW6//5qqFgh+bMjchA4WbW YluGPUHEfttGjHU20xgAuUXkOTmt6kBrbFwq1QRXh0bm
X-Google-Smtp-Source: APXvYqw7Yr98w4UAV76TSumlFS9HcA/gN8GqX+jMGhbozu7quDgiWYByEhIvfhA9Mi3m+PdLqrVSyzcXaYt+RCux+DU=
X-Received: by 2002:aca:62c4:: with SMTP id w187mr505399oib.38.1581648947658; Thu, 13 Feb 2020 18:55:47 -0800 (PST)
MIME-Version: 1.0
References: <CABNhwV0AHFmq9QcTwhgUWmaahaXvGW95abg+s8Uf7NQ2KHhhKw@mail.gmail.com> <4b6225b43a12499caa9dfe99200e74e3@boeing.com> <CABNhwV2q3_hCpU5gQYVT6mnZfu8ac1vyE6Mon_-6qCsdptRq-Q@mail.gmail.com> <CAO42Z2zPe3AxVY4w2dGX1xbbfVvYHg_yNruKXpGEp6VW2XG6vg@mail.gmail.com> <CABNhwV1KwEY+hmY6=vizBAxz+ggUvvfOfLC7o6Xz081+KBsBrw@mail.gmail.com>
In-Reply-To: <CABNhwV1KwEY+hmY6=vizBAxz+ggUvvfOfLC7o6Xz081+KBsBrw@mail.gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Fri, 14 Feb 2020 13:55:21 +1100
Message-ID: <CAO42Z2yQdyWZCHbPW4X3srGeetAgsxnybHAAbQsMzSh+neAGEQ@mail.gmail.com>
Subject: Re: 4941bis and multicast & QOS
To: Gyan Mishra <hayabusagsm@gmail.com>
Cc: 6MAN <6man@ietf.org>, "Manfredi (US), Albert E" <albert.e.manfredi@boeing.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/v0fuLLRaMt3ESJbbrWa4rQULh8M>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Feb 2020 02:55:51 -0000

On Fri, 14 Feb 2020 at 12:44, Gyan Mishra <hayabusagsm@gmail.com> wrote:
>
>
>
> On Thu, Feb 13, 2020 at 8:21 PM Mark Smith <markzzzsmith@gmail.com> wrote:
>>
>>
>>
>> On Fri, 14 Feb 2020, 11:53 Gyan Mishra, <hayabusagsm@gmail.com> wrote:
>>>
>>>
>>> Sorry Bert I missed your reply - responding now
>>>
>>> On Sun, Feb 2, 2020 at 3:36 PM Manfredi (US), Albert E <albert.e.manfredi@boeing.com> wrote:
>>>>
>>>> From: ipv6 <ipv6-bounces@ietf.org> On Behalf Of Gyan Mishra
>>>>
>>>> > How would multicast ASM or SSM work with the privacy extension temporary address enabled.  With the privacy temporary address enabled the IGMP Join would go out the temporary addresses, just as would normal unicast traffic.
>>>>
>>>> That's a good question, although only SSM would be a problem. In ASM, the IGMP/MLD join reports always go to the group multicast address anyway, and presumably, that won’t change. The unique source address of the client joining, or of the multicast source, should not matter. When responding to a new IGMP query, a new source address could be used in the report, still indicating to the router that membership exists. I would think, no problem.
>>>
>>>
>>>    You make a good point as to where the problem may fall.  So with ASM model the receiver is not source aware and so sends a IGMP join via temporary address RPF interface for outgoing “client like” unicast connections.  The LHR DR on the subnet creates MRIB state and forwards *,G shared tree join along RPF path to the Anycast RP /MSDP - which has active SA cache entry for the Source within the multicast routing domain.  The LHR now learns the SA for the group and initiates SPT switchover to the SPT tree and builds a tree directly to the source.
>>>
>>> With SSM the receiver is source aware via MLDv2, which now has source field in the packet for the SSM channel - along with well know default SSM group 232/8 - receiver is able to send via temporary address S,G join and to its LHR DR router on the subnet - which now builds SPT tree directly to the source.
>>>
>>> So this all works well in a client / server multicast model with pim sparse-mode where the clients are receiver only and the server is source only.
>>>
>>> In a peer2peer multicast model where the source acts as both receiver and source and the receiver acts as both receiver and source is the “bi-dir PIM” model -  this is the MPLS MVPN world translates into MP2MP LMDT instantiated via mLDP.
>>>
>>> Multicast is predominately used in enterprises.  The internet MBONE never really took off due to multicast use of UDP RTP  transport for streaming and thus a requirement for end to end QOS for reliability.
>>>
>>> So in the enterprise bi-dir pim model application requiring peer2peer multicast is the only scenario where you would run into issues with the privacy temporary address changing and becoming invalid resulting in session reset.  The app based source discovery would have to trigger changing of SSM channel when the source becomes invalid so the session would not reset.
>>>
>>> I think for this peer2peer model to work you really need a stable address on the host.
>>
>>
>> No you don't.
>>
>>
>> You need an address that is stable enough for the length of the communication session, with stable enough meaning having a lifetime long enough that it doesn't disrupt the communication session.
>>
>> How long are you multicast sessions going to be?
>
>
>  Since this is Clint to Client P2P no real servers involved now I think we would be fine even with 4941bis PL 1 VL 2.
>>

I think you still need to think more about it. I wouldn't agree that
things would be fine with PL 1, VL 2.

How long are your multicast sessions (or more generally, your
application communication sessions) going to be? What is the
requirement or requirements for address stability and persistence?

If you don't know answers to those questions, you can't determine when
temporary addresses with the RFC4291bis default lifetimes wouldn't be
adequate, and stable addresses should be used instead.


>>
>> If the length of the communication session is going to be less than the valid lifetime of a temporary address - by default 1 week - then there is no issue at all with using a temporary address, and in the interests of privacy it would be better to use a temporary address over an RFC7217 stable address.
>>
>> A server could have only temporary addresses as long as (a) communications sessions with clients are shorter than 1 week, and (b) the server updates DNS with new temporary address AAAA records dynamically.
>>
>> Stable addresses for servers is mainly just about avoiding dynamically updating DNS.
>>
>> Note that RFC7217 or RFC4862 EUI-64 addresses aren't permanent either. They too have lifetimes, PL=7 days, VL=4 weeks.
>>
>>
>> They will likely persist longer than that, however that is totally dependent on them receiving RAs or DHCPv6 refreshing and extending the lifetime, and the interface staying attached to the same link.
>
>
>    The router is always sending periodic RA so the lifetime is continually being reset.  So in essence the address is stable and in fact permanent

The word Permanent means never ever goes way. These addresses are not
permanent - they will go away if the conditions I've described aren't
met. They are persistent and stable, but not permanent.

>as long as the device remains attached.  If the device is attached and permanent  non mobile device the address would be permanent due to the periodic RAs from default gateway.  Cisco and other vendor implementations have the option to set the valid lifetime on the RA to maximum value which is a 32 bit number and that in fact sets it to infinite.

This is the IETF working group that specified that 32 bit number and
defined that 0xffffffff means 'infinite' in RFC4861. No need to state
it the way you have, it is assumed knowledge here.


> The knob is there however since the RA is periodic constantly resetting the VL, not sure why you would ever hardcore the VL in the RA to infinity.
>>

Because you don't want addresses to be permanent, because you want to
facilitate phased renumbering. This is why the default PL and VL in
RFC 4861 are 1 week and 4 weeks, not infinite.

>>
>> RFC7217/RFC4862 stable addresses aren't permanent addresses. Permanent addresses would have infinite lifetimes and never expire (the loopback address is a permanent one, as are link-local addresses, because they have infinite PL and VL).
>
>
>     See above
>>
>>
>>
>>>
>>> This could be one use case where RFC 4941bis would fail - with removing the stable address as it’s currently written.
>>>>
>>>>
>>>> In SSM, the IP destination address of the reports is a well-known multicast address, to routers, but of course, if you want to include only a certain set of sources, those source IP address(es) in the IGMP/MLD report either have to be valid, or you get nothing.
>>>>
>>>> > The temporary address would be the  RPF path shared and SPT tree.
>>>>
>>>> Isn’t this just related to multicast routing, between routers? Their addresses would not change at a dizzying rate?
>>>>
>>>> Bert
>>>>
>>> --
>>>
>>> Gyan  Mishra
>>>
>>> Network Engineering & Technology
>>>
>>> Verizon
>>>
>>> Silver Spring, MD 20904
>>>
>>> Phone: 301 502-1347
>>>
>>> Email: gyan.s.mishra@verizon.com
>>>
>>>
>>>
>>> --------------------------------------------------------------------
>>> IETF IPv6 working group mailing list
>>> ipv6@ietf.org
>>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>>> --------------------------------------------------------------------
>
> --
>
> Gyan  Mishra
>
> Network Engineering & Technology
>
> Verizon
>
> Silver Spring, MD 20904
>
> Phone: 301 502-1347
>
> Email: gyan.s.mishra@verizon.com
>
>
>

v2.23.0 | Report a Bug | By Email